Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
SP2 firewall
- Thread starter darrinr
- Start date
bcastner, looks like a couple of hung application errors Category 101 nad event id 1002. Also a WinMgt Event id 1063 A provider WMIPROV has been registered in the WMI namespace. Root \WMI, to use the local system account. this acct is priveged and the priliges may casue a security violition. Intuity
Hmmmm.
I fear a bad intall of Sp2. I would like you to consider redoing the SP2 install from a CD image.
In any case, open notepad and copy/paste the below as off_firewall.reg This will turn-off the firewall after a reboot without question:
-------- start copy/paste below this line
REGEDIT4
[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=dword:00000000
----------- end copy/paste
Double click the saved file to merge with the registry and reboot.
Your firewall is now off.
I would be happier if you performaned an over the top re-upgrade to SP2 using a CD image. They can be found very easily from friends, your local computer store or ordered from Microsoft:
In my experience it appears 3-5 business days after order.
Best wishes,
Bill Castner
I fear a bad intall of Sp2. I would like you to consider redoing the SP2 install from a CD image.
In any case, open notepad and copy/paste the below as off_firewall.reg This will turn-off the firewall after a reboot without question:
-------- start copy/paste below this line
REGEDIT4
[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=dword:00000000
----------- end copy/paste
Double click the saved file to merge with the registry and reboot.
Your firewall is now off.
I would be happier if you performaned an over the top re-upgrade to SP2 using a CD image. They can be found very easily from friends, your local computer store or ordered from Microsoft:
In my experience it appears 3-5 business days after order.
Best wishes,
Bill Castner
One choice would be: (note the change from above)
-------- start copy/paste below this line
REGEDIT4
[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=dword:00000001
----------- end copy/paste
But see Ramesh MS-MVP's notes here:
-------- start copy/paste below this line
REGEDIT4
[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=dword:00000001
----------- end copy/paste
But see Ramesh MS-MVP's notes here:
Troubleshooting Windows Firewall in Microsoft Windows XP Service Pack 2
Manually Configuring Windows Firewall in Windows XP Service Pack 2
Manually Configuring Windows Firewall in Windows XP Service Pack 2
linney,
thank you for the links. I have researched them on my own. My question is this: Originally we ethought that we would use a third party firewall product and so selected the radio button in the security center that indicated we ewould use a third party firewall product. So, now that we do not want to use a third party firewall product and stick with Windows Firewall, I can not toggle between the usingthe third party vendor product and the windows firewall product. I see a blue banner that syas a group policy is preventing me from changing the firewall product. Additionally, I installed an anti virus third party product last night from Zero Knowledge solutions (Freedom anti virus which is a great product) but windows security center presneted an alert indicating that Windows SP2 will be unstable due to a driver incompatibility in the anti virus. It provided a patch link to down load an anti virus patch to resolve the issue but the group policy in plafe on the firewall prevents the anti virus patch download. How can I deselect third party vendor firewall product and select windows firewall product instead in view of the group policy blockage? Our user id is in the local administrator category. I am at a stand still as to how to resolve this. I uninstalled and reinstalled SP2 but that did not solve the problem. I t was suggested to reinstall SP2 from an actual MS Cd rom instead of downlaoding from the Internet from Microsoft. So, I order the free SP2 CD and am waiting for that. I am not sure that will fix the group policy problem. Any thughts? Intuity
thank you for the links. I have researched them on my own. My question is this: Originally we ethought that we would use a third party firewall product and so selected the radio button in the security center that indicated we ewould use a third party firewall product. So, now that we do not want to use a third party firewall product and stick with Windows Firewall, I can not toggle between the usingthe third party vendor product and the windows firewall product. I see a blue banner that syas a group policy is preventing me from changing the firewall product. Additionally, I installed an anti virus third party product last night from Zero Knowledge solutions (Freedom anti virus which is a great product) but windows security center presneted an alert indicating that Windows SP2 will be unstable due to a driver incompatibility in the anti virus. It provided a patch link to down load an anti virus patch to resolve the issue but the group policy in plafe on the firewall prevents the anti virus patch download. How can I deselect third party vendor firewall product and select windows firewall product instead in view of the group policy blockage? Our user id is in the local administrator category. I am at a stand still as to how to resolve this. I uninstalled and reinstalled SP2 but that did not solve the problem. I t was suggested to reinstall SP2 from an actual MS Cd rom instead of downlaoding from the Internet from Microsoft. So, I order the free SP2 CD and am waiting for that. I am not sure that will fix the group policy problem. Any thughts? Intuity
Bcastner,
I tried the shared acess file and it did not work. I appreciate the tip though. I placed an order for the Microsoft SP2 CD last night so I can follow your suggestion to perform an over the top reinstall of SP2 from CD-rom. I did uninstall SP2 yesterday and reinstall as a download from the Microsoft site. The reinstall did not improve anything. Intuity
I tried the shared acess file and it did not work. I appreciate the tip though. I placed an order for the Microsoft SP2 CD last night so I can follow your suggestion to perform an over the top reinstall of SP2 from CD-rom. I did uninstall SP2 yesterday and reinstall as a download from the Microsoft site. The reinstall did not improve anything. Intuity
Check your Group Policy settings around this area.
Location: Computer Configuration\Network\Network Connections\Windows Firewall\Standard Profile
"If you disable this policy setting, Windows Firewall does not run. This is the only way to ensure that Windows Firewall does not run and administrators who log on locally cannot start it."
You may have to uninstall and remove any third party firewall.
Location: Computer Configuration\Network\Network Connections\Windows Firewall\Standard Profile
"If you disable this policy setting, Windows Firewall does not run. This is the only way to ensure that Windows Firewall does not run and administrators who log on locally cannot start it."
You may have to uninstall and remove any third party firewall.
linney,
thaks for your advice. The problem is we are running Windows XP Home Edition and there is not an option to add group policy as a snap on. Thus, I can not go to Computer Configuration etc to turn enable standard profile. At the moment there is not a third party firewall product installed or runnng. There isn't any firewall product installed or running at this time. Bcastner suggested I order the SP2 directly from Microsoft and perform an over the top reinstallation of SP2. I had recently uninstalled SP2 and then downloaded it from Microsoft to reinstall. This reinstall did not solve the problem. I am not sure why I can not activate the Windows firewall product but do realize that a group policy object is preventing it. I am not sure if reinstalling SP2 will fix the problem. IF not, I will need to know what to do as a next resolution step. Intuity
thaks for your advice. The problem is we are running Windows XP Home Edition and there is not an option to add group policy as a snap on. Thus, I can not go to Computer Configuration etc to turn enable standard profile. At the moment there is not a third party firewall product installed or runnng. There isn't any firewall product installed or running at this time. Bcastner suggested I order the SP2 directly from Microsoft and perform an over the top reinstallation of SP2. I had recently uninstalled SP2 and then downloaded it from Microsoft to reinstall. This reinstall did not solve the problem. I am not sure why I can not activate the Windows firewall product but do realize that a group policy object is preventing it. I am not sure if reinstalling SP2 will fix the problem. IF not, I will need to know what to do as a next resolution step. Intuity
The next step requires another machine where it does work. You need to copy a clean set of registry keys for the SharedAccess service.
See:
See:
Hello, Bcastner,
I would like to provide an update on the SP2 issue. My instructor just received the SP2 CD from Microsoft as you had instructed us to obtain. We installed it this morning and unforunately it did not resolve the firewall issue. So, next, we went to the regedit and examined the file contents that you suggested below. What we found was pretty much what you have identified below except for this change in the regedit entry; under parameters\firewall policy it has to profile options domain and standard profile. We went to open the standard profile and all it has was AuthorizeApplication. So we opened authorizeapplication and all it had under that was "List" Then, we did the same thing with the Domain profile. It had the samething there Authorize application and "List" We did not see anything that said enable firewall or dword=00000001
So, is it safe to just cut and past the below and merge it into the reg file? Or should we delete the domain profile first? I just was not expecting to find Authorize application and am not sure what this means.
Finally, as I am a little new to merging files in Regedit, all I need to do is copy and paste this textinto Notepad. Save it as on_firewall.txt
The open notepad, double click on this saved file in order for it to merge with the registryfile. Then, reboot. Correct?
One choice would be: (note the change from above)
-------- start copy/paste below this line
REGEDIT4
[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=dword:00000001
----------- end copy/paste
Thanks, Intuity
I would like to provide an update on the SP2 issue. My instructor just received the SP2 CD from Microsoft as you had instructed us to obtain. We installed it this morning and unforunately it did not resolve the firewall issue. So, next, we went to the regedit and examined the file contents that you suggested below. What we found was pretty much what you have identified below except for this change in the regedit entry; under parameters\firewall policy it has to profile options domain and standard profile. We went to open the standard profile and all it has was AuthorizeApplication. So we opened authorizeapplication and all it had under that was "List" Then, we did the same thing with the Domain profile. It had the samething there Authorize application and "List" We did not see anything that said enable firewall or dword=00000001
So, is it safe to just cut and past the below and merge it into the reg file? Or should we delete the domain profile first? I just was not expecting to find Authorize application and am not sure what this means.
Finally, as I am a little new to merging files in Regedit, all I need to do is copy and paste this textinto Notepad. Save it as on_firewall.txt
The open notepad, double click on this saved file in order for it to merge with the registryfile. Then, reboot. Correct?
One choice would be: (note the change from above)
-------- start copy/paste below this line
REGEDIT4
[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=dword:00000001
----------- end copy/paste
Thanks, Intuity
Finally, as I am a little new to merging files in Regedit, all I need to do is copy and paste this textinto Notepad. Save it as on_firewall.txt"
This is correct, BUT, the file must have a .reg extension and not .txt
"The open notepad, double click on this saved file in order for it to merge with the registryfile. Then, reboot. Correct?"
Correct.
One choice would be: (note the change from above)
-------- start copy/paste below this line
REGEDIT4
[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=dword:00000001
----------- end copy/paste
Looks good. (I missed the closing "]" in one of my posts above.)
Best wishes,
Bill Castner
This is correct, BUT, the file must have a .reg extension and not .txt
"The open notepad, double click on this saved file in order for it to merge with the registryfile. Then, reboot. Correct?"
Correct.
One choice would be: (note the change from above)
-------- start copy/paste below this line
REGEDIT4
[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=dword:00000001
----------- end copy/paste
Looks good. (I missed the closing "]" in one of my posts above.)
Best wishes,
Bill Castner
Bcastner,
Thank you very, very much. I'll have a chance to apply this later this afternoon. Thank you for pointing out the .reg file extension as that will help a great deal. What is the purpose of including the statement REGEDIT4 in the above opy and past statement? Is that how the double click on the file to merge transpires?
Intuity
Thank you very, very much. I'll have a chance to apply this later this afternoon. Thank you for pointing out the .reg file extension as that will help a great deal. What is the purpose of including the statement REGEDIT4 in the above opy and past statement? Is that how the double click on the file to merge transpires?
Intuity
Launch RegEdit and use the Help program as it is your best source of information about RegEdit.
These following links take the subject a bit further too.
310516 - How To Add, Modify, or Delete Registry Subkeys and Values by Using a Registration Entries (.reg) File
310426 - How To Use the Windows XP and Windows Server 2003 Registry Editor Features
If you change a key or value, use the Export function to save a copy of any key prior to your change. You just right-click on the highlighted key to find Export.
To backup the whole Registry for easy re-installation (even from other operating systems) I recommend this free program.
Registry Backup and Restore for Windows NT/2000/XP
These following links take the subject a bit further too.
310516 - How To Add, Modify, or Delete Registry Subkeys and Values by Using a Registration Entries (.reg) File
310426 - How To Use the Windows XP and Windows Server 2003 Registry Editor Features
If you change a key or value, use the Export function to save a copy of any key prior to your change. You just right-click on the highlighted key to find Export.
To backup the whole Registry for easy re-installation (even from other operating systems) I recommend this free program.
Registry Backup and Restore for Windows NT/2000/XP
Bcastner,
I applied the file we discussed yesterday and unfortunately, it did not resolve the issue. By just sheer dumb luck and searching through the registry files, I finally found something called group polices and looked under windows and under firewall and saw where it had both domain and standard turned off (0). I inserted a 1 on the standard profile rebooted. then checked the firewall icon in Control panel and verified that the firewall was turned on. So, now the firewall is turne on but still needs to be onfigured. Thanks for all of your help. Intuity
I applied the file we discussed yesterday and unfortunately, it did not resolve the issue. By just sheer dumb luck and searching through the registry files, I finally found something called group polices and looked under windows and under firewall and saw where it had both domain and standard turned off (0). I inserted a 1 on the standard profile rebooted. then checked the firewall icon in Control panel and verified that the firewall was turned on. So, now the firewall is turne on but still needs to be onfigured. Thanks for all of your help. Intuity
- Status
Similar threads
